When using third-party certificates, you need a private key to enable integration of the certificates with RabbitMQ.
To install the certificates on the local machine:
- Double click the certificate file.
Click Install certificate.
The Certificate Import Wizard opens.
Select the following options:
A PFX file is generated.
- Select Local machine for Store location and click Next.
- In the Certificate store section, click Browse, select Personal from the Certificate store list, and then click OK.
- On the Export Private Key page, select Yes, export the private key and click Next.
- Clear Enable certificate privacy.
- In the Security section, select Password, type your password choice, and click Next.
To convert the PFX file to a pem file:
- Install OpenSSL.
Open the command prompt as an administrator:
- In the Windows search box, type cmd.
- Right click Command prompt and select Run as administrator.
the following commands:
The key.pem file is generated in c:\OpenSSL-Win32\bin.
Change the directory using the following command:
NOTE: Copy your PFX file to this location.
- Execute Openssl.exe pkcs12 -in yourpfxfile.pfx -nocerts -out key.pem -nodes
- When prompted for a password, enter the password you set up when exporting the certificates from mmc.exe.
- Change the directory using the following command: c:\OpenSSL-Win32\bin
- Move the Key.pem file to C:\Program Files (x86)\Genetec\RabbitMQ.
- Back up your RabbitMQ self-signed certificate files in C:\Program Files (x86)\Genetec\RabbitMQ.
Replace the RabbitMQ self-signed certificates:
- Go to C:\Program Files (x86)\Genetec\RabbitMQ.
Replace Cert.cer with Cert.pem.
NOTE: You can change the extension by renaming it.
- Replace CACert.cer with CACert.pem.
- Open the RabbitMQ Command Prompt (sbin dir) application.
Reinstall the RabbitMQ service by executing the following commands:
- rabbitmq-service.bat remove
- rabbitmq-service.bat install
- rabbitmq-service.bat start
- Reboot your machine for the changes to take effect.